Misc :: Velociraptor - Digging deeper!

Misc

Miscellaneous plugins not yet categorized.

Plugin/Function	Type	Description
all	Function	Returns TRUE if all items are true
any	Function	Returns TRUE if any items are true
client_create	Function	Create a new client in the data store
delay	Plugin	Executes ‘query’ and delays relaying the rows by the specified number of seconds
delete_events	Plugin	Delete all the files that make up a flow
delete_flow	Plugin	Delete all the files that make up a flow
entropy	Function	Calculates shannon scale entropy of a string
flow_logs	Plugin	Retrieve the query logs of a flow
gunzip	Function	Apply Gunzip to the data
hunt_delete	Plugin	Delete a hunt
lru	Function	Creates an LRU object
lzxpress_decompress	Function	Decompress an lzxpress blob
org	Function	Return the details of the current org
org_create	Function	Creates a new organization
org_delete	Function	Deletes an Org from the server
orgs	Plugin	Retrieve the list of orgs on this server
passwd	Function	Updates the user’s password
process_tracker	Function	Install a global process tracker
process_tracker_all	Function	Get all processes stored in the tracker
process_tracker_callchain	Function	Get a call chain from the global process tracker
process_tracker_children	Function	Get all children of a process
process_tracker_get	Function	Get a single process from the global tracker
process_tracker_pslist	Plugin	List all processes from the process tracker
process_tracker_tree	Function	Get the full process tree under the process id
process_tracker_updates	Plugin	Get the process tracker update events from the global process tracker
query	Plugin	Evaluate a VQL query
rekey	Function	Causes the client to rekey and regenerate a new client ID
remap	Function	Apply a remapping configuration to the root scope
user_grant	Function	Grants the user the specified roles